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ACCESS CONTROL FOR PORTABLE DATA STORAGE MEDIA 



Field ot the Invention 

The present invention relates to providing access to data stored on a portable 
data storage unit. More particularly, it relates to a system for delivering encrypted 
data on a portable data storage unit and transmitting an access code from a remote 
location to decrypt the encrypted data. 

Background of the Invention 

As advances in data high density storage technology continue to progress, 
more homes and business are acquiring computer peripherals capable of reading the 
new forms of portable data storage media. For example, high-density media such as 
compact disc - read only memory (CD-ROM) is becoming a popular medium for 
storing advanced forms of electronic information such as textual, visual (video or 
photographs) and audio information as well as interactive media. CD-ROMs contain 
enough storage space to hold the equivalent of 250,000 pages of text, 12,000 images, 
1.5 hours of video, 500 paperback books or 430 magazines. Moreover, CD-ROM 
technology supports an extremely cost effective replication feature averaging $0.05 per 
replicated CD. CD-ROM players can be coupled to television sets or computers so 
that the user can access textual and visual information as well as audio information 
stored on a CD-ROM. 

It is common practice for most publishers to collect and process their 
information electronically, that is, on word processors and computers. Their data is 
maintained in electronic form until it is time to mail it to the subscriber At that time, 
the information is printed, subscribers mail labels are attached and the published 
information js sent via a postal service to the subscriber. Under this system, the costs 
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of printing and delivery are extremely high. Moreover, environmental concerns have 
necessitated the need to consider paper a critical resource. Accordingly, the need for 
a new publishing medium has been recognized. For example, see U.S. Patent 
Nos. 4,827,508, 4,977,594 and 5,050,213, issued May 2, 1989, December 11, 1990 
and September 17, 1991 respectively to Shear. 

Subscription services to the home and office through standard postal channels 
provide subscribers with magazines, trade journals, financial updates and book of the 
month clubs. These subscription services require the user (subscriber) to pay a fixed 
amount either in advance or monthly. During the time which the subscription is valid, 
the publisher continues to mail its information to that subscriber. Moreover, any single 
user may be the subscriber of a multitude of journals or magazines. It fs also likely a 
single subscriber may hold subscriptions to several magazines published by the same 
publisher. 

Also other types of published or archived information, such as corporate, 
government or legal records, are printed on paper for dissemination. When 
disseminated, such records may inadvertently or intentionally be read by those 
unauthorized to do so since there is no way to insure that the reader is authorized to 
access to printed matter. Moreover, since some published corporate or legal 
information is subject to constant updates which renders the previously published 
material obsolete, it is preferable but often difficult to purge dated material from 
circulation. 

Again referring to the Shear patents, these systems audit or meter a user's 
access activity. Because a key to unlock encrypted data is present on the user's 
hardware, such as a PCMCIA card, the decryption function is inhibited at the user's 
site in order to prevent unauthorized access to the data. Thus, according to the 
systems of Shear, access to the information on the portable storage medium, such as 
a CD-ROM, is available to a user without prior authorization for access. Therefore, 
there is no way to insure that the reader is authorized to access to the information 
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stored on the CD-ROM prior to the user's access. Furthermore, those systems do not 
provide a way in which access to out-of-date information can be blocked. 

The need for protection of information stored on, for example, CD-ROMs, from 
unauthorized access needs to be satisfied before such a publication distribution system 
is acceptable to publishers. Security provided at both the publisher's site and 
subscriber's site is needed to prevent the unauthorized access to data contained on 
the media. Moreover, valid subscribers need to be protected when their subscription 
service is terminated. 

Summary of the Invention 

There are at least three basic features of the present invention. They include, 
encryption of data in a particular manner, distribution of the data under a particular 
distribution scheme and controlling the use of the data through an update scheme. 
Many benefits are provided by these basic features as will be discussed in detail 
below. 

This invention includes publishing data on a removable or portable media, 
preferably high density, such as a CD-ROM or a magnetic optical (MO). Thus, one or 
more publishers may incorporate several, if not, all of their periodic publications on a 
single media. The present invention includes partitioning the media according to the 
different publications into data sets, and then providing a protection, access, and use 
audit scheme to these data sets. Thus, only validated subscribers are able to gain 
access to the information stored on the CD-ROM. 

Another important feature of the present invention is that it provides the 
publisher the tools to configure and set up data and billing according to the publisher's 
own choice. At the time they create the media, publishers are provided flexibility in 
billing to charge subscribers in accordance with the type of information being sold. 
This flexibility is incorporated into the publishing process. 



WO 95/08231 



-4- 



PCT7US94/10455 



More specifically, the protection and access scheme of the present invention 
includes providing the publisher with an encryption tool on, for example, a personalized 
PCMCIA, or other suitable program storage medium. Under this implementation of the 
present invention, when the publisher loads a program stored locally, menu driven 
options appear on the publisher's computer screen which allow the publisher to define 
the user's or subscriber's access to the publisher's data. The billing options are also 
known as "attributes/' which include, for example, subscription duration. The billing 
attributes are associated with Key Material Identifiers (KMIDs), which are in essence, 
indexes or identifying codes for the purpose of correlating billing attributes with access 
codes. Access code and key are used interchangeably herein. An access code 
corresponding to a particular segment of data stored on the CD-ROM is ultimately 
downloaded to the subscriber so that they may gain access to the information. 

The program stored on the publisher's PCMCIA enables the publisher to 
encrypt the data so that an access code or key is required to decrypt it. The 
encrypted or scrambled data along with the KMID is then stored on a portable storage 
medium. Corresponding billing information is also stored in a separate file for the 
user's review. The CD-ROM is then transferred to the user. The user is also in 
possession of a PCMCIA, or other suitable storage medium which has on it software 
for communicating with the billing/access center and managing downloaded access 
codes. The user further has available a telephone line or comparable medium, a 
computer with a modem and peripherals capable of reading the PCMCIA and the CD- 
ROM. 

An application on the user's personal computer enables a menu to appear on 
the screen of the computer when the user loads the CD-ROM containing publisher's 
data into its reading hardware. The menu lists, for example, the publications available 
for sale and the billing information. The user then, via the software stored on the 
PCMCIA card, requests access to one or more of the publications by highlighting or 
pointing to a publication for sale and then sending the request to the billing/access 
center The KMID or identifying index and required billing data, such as a credit or 
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debit card number, is sent to a remote billing station via the telephone line. The billing 
station, upon credit approval, matches the KMID to the access code and transmits the 
key and access parameter, e.g. time of subscription purchased, to the user via the 
telephone line. The key is then installed on the user's PCMCIA card. The user may 
5 then access the particular publication which is accessible by that particular access 

code or key. 

Brief Description of the Drawings 

Figure 1 depicts the overall system of the present invention; 

Figure 2 shows the user/billing station subsystem of Box 1 1 of Figure 1 ; 
10 Figure 3 shows the publisher/billing station subsystem of Box 12 of Figure 1; 

Figure 4 is a schematic showing the information sent to the billing/access 
center by the publisher and by the user; 

Figure 5 is a block diagram of some elements of the publisher's station of the 
present invention; 

15 Figure 6 is a block diagram of the publisher's PCMCIA; 

Figure 7 is a flow chart of publisher's billing software; 

Figure 8 depicts a screen display of attribute choices available during the 
publisher's utilization of the present invention; 

Figure 9 depicts a second screen display of security choices available during 
20 the publisher's utilization of the present invention; 

Figure 10 shows a list of the type of information stored on the removable 
media of the present invention; 

Figure 1 1 is a block diagram of some elements of the subscriber's station of 
the present invention; 
25 Figure 12 is a block diagram of the subscriber's PCMCIA; 

Figure 13 is a flow chart of the subscriber's key request process; 

Figure 14 is a block diagram of key data base and billing/access center; 

Figure 15 is a flow chart of the billing/access center process; and 

Figure 16 is a chart illustrating the cryptographic update feature of the present 
30 invention. 
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Detailed Description of the Invention 

The system and method of the present invention generally includes two 
subsystems and submethods. The first part of this discussion will focus upon the two 
subsystems and how they interrelate in order to make the whole system. The second 
5 part of this discussion which begins below, will concentrate on the implementation of 

each part of the system. 

Referring to FIG. 1, box 11 and box 12 are two different portions of the overall 
system which overlap at box 13. In box 12, the publisher 21 of data is shown. The 
data can include any type of data which can be stored on a portable storage unit 22 

10 such as, and hereinafter referred to as CD-ROM 22. After the data is generated and 

before it is stored on the CD-ROM 22, it is encrypted or scrambled so that it cannot 
be accessed without the appropriate access code. Accordingly, the present invention 
incorporates standard cryptographic techniques such as symmetric key encryption, 
digital signature, asymmetric key exchanges, or challenge response. Alternatively, this 

1 5 invention may utilize any non-standard cryptographic techniques. 

After the publisher 21 encodes the data, it communicates certain information to 
billing/access center 23 shown in box 13, as will be discussed in detail below. The 
publisher 21 stores the encrypted data on the CD-ROM 22 and then distributes the 
data via distribution channels such as the postal service 24. Distribution channels can 

20 also include inter-office distribution, for example, in a corporate, government or legal 

environment among others. Ultimately, the CD-ROM is received by a user 26. The 
user has a computer (which includes a processor) or a television set or monitor with a 
processor and a CD-ROM reader. The user's computer is equipped with either a 
software program and/or hardware which is used to communicate with billing/access 

25 center 23 and which has a controller to process the data received from billing/access 

center 23. 



When the user 26 loads the CD-ROM 22 into its CD-ROM reader, the user is 
presented with a menu on the computer or television monitor or screen which 
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indicates what data is stored on the CD-ROM 22. A portion of the data on the 
CD-ROM 22 may not be encrypted so the user can access that portion without an 
access code. However, at least a portion of the data, according to the present 
invention, is encrypted. In order for the user to access the encrypted data, the user 
must obtain an access code or a key to decrypt the encrypted data. In order to obtain 
an access code, the user 26 communicates with the billing/access center 23 via 
connection 27, which is a telephone line or other communication apparatus or device, 
sending a request for a particular access code. Upon authorization, billing/access 
center 23 downloads or sends to the user 26 via connection 27, an access code to 
decrypt the data. 

FIG. 2 shows the user/billing/access center subsystem in more detail. As 
mentioned above, the user's computer is equipped with either a software program 
and/or hardware which is used to communicate with billing/access center 23 and 
which is used control the data received from billing/access center 23. As depicted in 
FIG. 2, an application to open and provide use "screens" is resident on the machine. 
Communication is therefore enabled between the PCMCIA card 29 which is loaded into 
PCMCIA drive 32 and the user operating the computer 31. The PCMCIA card 29 is 
supplied to user so that the user can provide a request 27' to the billing/access center 
23 for an access code to decrypt encrypted data. Upon authorization, billing/access 
center 23 downloads or sends to the user 26 the access code via connection 27". 
Connection 27' and 27" can be the same line or transmission means, such including 
standard electronic mail formats. The access code or key is stored on the user's 
PCMCIA card 29 for reasons which will become clear below. 

Now referring to FIG. 3, the publisher's station 36 consists of a workstation for 
organizing and gathering information. A writer device to create CD-ROM 35 is in 
communication with the publishers workstation. The publisher is provided its own 
publisher PCMCIA card 33 on which a software program is stored in order to allow the 
publisher to define and control access to the data at the time the information is 
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organized for publication on the CD-ROM. Alternatively, hardware can be provided to 
the publisher in place of software. 

The data 34, as mentioned above can include, for example video, image, 
photographs, databases, sound, software. The data is either generated on or loaded 
onto the publisher's computer 36. In accordance with the present invention, before the 
data is stored on the CD-ROM 22, the publisher determines the billing partitions which 
are based on like data, e.g. singles magazines, single database, group of similar 
photographs, modules of executable software and single fonts. The publisher also 
separates the data into different data sets such as files, sub directories, directories and 
volumes under different symmetric cryptographic keys so that access to each different 
segment is only possible with a key which matches that data segment 

The billing partitions are categorized according to how the publisher wants to 
bill for access to the data. Access control to the data set(s) is therefore controlled via 
the billing or "attribute" mechanism of the present invention. Attributes are assigned to 
the data sets by the publisher 21 and are bound to the access code which is 
hereinafter referred to as the key, such used by the user 26 to decrypt the individual 
data sets. Each individual symmetric key is then bound to or assigned a unique Key 
Material Identifier (KMID) which will be described in detail below. 

The attributes are defined, implemented and used to determine charges for 
access to the data encrypted by the user 26 prior to access. One example of an 
attribute is time duration. For example, one CD-ROM may contain a January issue of a 
magazine. CD-ROMs issued for months following January may contain subsequent 
issues of the same magazine. The publisher may wish to offer 1 year, 2 year and 3 
years subscriptions, as well as a free 1 month trial subscription. These four different 
time durations constitute four different attributes. Thus, according to the present 
invention, a cryptographic update process is applied to allow can be access for fixed 
periods of time depending on which time duration was chosen by the user. A 
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configuration for an attribute is a data structure of variable length containing flags 
indicating which metric is present and parameters indicating metric values and units. 



Other examples of attributes include "one time buy" attribute where the 
information is purchased once, and all information protected by that key is available to 
5 the subscriber. Also included is an "on demand" attribute where the use of the data is 

monitored based on a publisher defined parameter including number of times the key 
can be used, the number of transactions, number of bytes or number of files 
transferred. Moreover, advertising attributes such are available. For example, a 'Tile 
bypass" attribute allows the publisher to define files or data sets which are bypassed 

10 or are in plain text Also, a 'trial period" attribute allows the user to obtain access to 

these files for a fixed period of time without a copy or print capability. Applications, 
such as the trial period, communicates directly with the PCMCIA card to control 
access to application specific functions, such as copy or print. These applications are 
modified to support the PCMCIA interface. Furthermore, by a "reduced resolution" 

15 attribute, the publisher allows viewing of a particular file without quality resolution. 

The attributes can be representable by constant values and can also be functions of 
variables. 



After determination of the data partitions by the publisher, and after the 
publisher defines the attribute to be used with each data set, the attribute is bound 

20 with a key and a Key Material Identifier (KMID). The KMID acts as an index or 

identifying code so that the billing/access center can provide the proper key or access 
code to open the desired data set. This information is combined by the publisher 21 
to create a unique file containing the attribute information for the entire media to be 
distributed. This information is sent to the billing/access center. The software stored 

25 on the PCMCIA card 33 further allows the publisher 21 to encrypt the data and include 

the attribute and the KMID on the CD. 



The system of the present invention therefore includes assignment of the key 
and KMID to a database and the keeping of such information by the billing/access 
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center 23. It further includes the user sending to the billing/access center a particular 
KMID in order to receive a key to access the desired data. These elements of this 
system are shown in FIG. 4, where the unique file 37 containing the key, attribute and 
KMID for each data set is transmitted to the billing/access center 23 which is billing or 
5 authorization center 23 by the publisher. This file 37 is downloaded into a central 

distribution site. The only information that needs to be written to the CD-ROM 22 is 
the start and stop sector information along with the KMID associated with each 
particular data set 38. A special "Read-Me" file can be created which allows the 
subscriber to read information concerning pricing (which match the attributes) for the 
1 0 individual data sets. The "mastered" information is then replicated and distributed by 

the publisher via any transport method suitable. 

Returning to FIG. 2, the user 26 is able to load the CD-ROM into a CD-ROM 
reader 28 and read the special "Read-Me" file to see what is available on the portable 
storage media. When the user 26 has identified a particular data set the user wishes 
15 to access, the user 26 uses the PCMCIA card 29 which is loaded into the PCMCIA 

drive 32 to communicate with the billing/access center, billing/access center 23 a 
request including the KMID which identifies the desired key via connection 27\ The 
billing/access center, once having authorized access, downloads via line 27" the key 
associated with the KMID. 

20 When downloaded, the key may reside on the user's PCMCIA card 29 or on 

appropriate hardware. The key will access the data set of the instant CD-ROM and 
subsequent CD-ROMs which are distributed in accordance with the limits of the 
attribute. Therefore, if the attribute indicates a six month time duration as indicated in 
box 37 and box 38 of FIG. 4, and the first access occurs in January, the user 26 may 

25 use the user PCMCIA card 29 through June in order to access the equivalent data set 

on subsequently distributed CD-ROMs. After the first use of the key, the subsequent 
use of the key is maintained and audited by the local user environment, that is, 
through the user PCMCIA card 29. 
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ln order to provide for limited time duration attributes, the present invention 
utilizes "key zeroization " which occurs when an attribute condition is met or can be 
remotely invoked by the billing/access center. For example, an attribute condition 
having been met would include the passage of time which is monitorable by a time 

5 clock. Since updated data is released periodically, keys are derived from the originally 

generated key through a cryptographic update process. This feature allows the 
publisher to distribute its periodic information under a different key which is derived 
from the last key based on a cryptographic operation. The number of updates valid 
for a subscriber is encoded in the KMID/attribute information. The cryptographic 

10 update process of the present invention is described in detail below and with reference 

to FIG. 16. 

The user's PCMCIA card 29 is used to audit and maintain the count of updates 
provided by the publisher. Each CD-ROM contains information about the update 
release of a particular KMID as well as time stamping information used by the user's 
15 PCMCIA card 29 for time based key management functions. A clock can also be 

installed on the PCMCIA card. 

The zeroization feature of the present invention provides the advantage that the 
access of, for example, corporate, government or legal records which are frequently 
updated can be avoided or stopped. By using a key which zeroizes after one or only a 
20 few reviews of the data or after a, short time duration, the publisher insures that out-of- 

date frequently updated records will not be confused with current records. 

The users PCMCIA card 29 is also used to authenticate the subscriber to the 
billing/access center. Each subscriber is assigned a unique public/private key pair to 
be used in all transmissions, such being stored on the user's PCMCIA card 29. 
25 Different users key pairs or personalities allow the user to sign purchase orders or to 

make purchase requests with the appropriate personalities. This feature is important in 
the situation where a single person holds, whether temporary or permanently, several 
different offices. For example, the president of a company may sign a separate 
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request as a purchasing agent but may sign a separate access request, with different 
privileges, as president of the company. Accordingly, this invention supports the 
authentication of different user personalities, as defined by the subscriber, to provide 
electronic purchase authorizations. Furthermore, each user PCMCIA card 29 contains 
5 a unique Pin Phrase to validate the user and their use of the personalities and 

cryptographic functions of the card at the user's site or through an optional 
challenge/response system. 

When an individual wishes to gain access to files stored on the CD-ROM, the 
key must be resident on the card, that is, already purchased. If not, the subscriber 
1 o must create a purchase request and send this request to the billing/access center. All 

requests containing payment methods, e.g. credit card numbers, are encrypted in the 
public/private key pair. All purchase requests can be also be signed by the 
appropriate authorizing personality before the billing/access center will process any 
purchase request. 

1 5 In the situation where a purchase is not made, that is, where inter-office 

distribution of CD-ROM to provide corporate, government or legal information in-house, 
the authentication feature is especially desirable. Unauthorized access to sensitive 
information is more easily avoided in accordance with the present invention than when 
information is disseminated on printed media. 

20 To recap, referring to FIG. 1 , at the billing/access center 23 the request 27 is 

received in the form of, for example, electronic mail. The mail is received and the 
signature is validated to authenticate the source of the request Included with the mail 
message is the requested KMID (see FIG. 4). This is then used as a look up index 
into a large database containing the stored cryptographic keys. Under one 

25 embodiment of the present invention, the following steps occur. The billing/access 

center 23 obtains the publisher defined attributes assigned to the KMID from the 
database and provides this information to the requester. The requester is then allowed 
to select a form of payment for the key which is sent to the billing/access center. The 
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billing/access center then validates the payment method and authorization. The KMID 
and its binded attributes are then sent to the user. At the user's site, the KMID and 
attributes are loaded onto the user PCMCIA card 29 for control of access and for audit 
purposes by the card. The user now has access to the purchased information. The 
KMID and use of the keys according to the publisher's definition is monitored and 
maintained by the user's PCMCIA card 29. As mentioned above, when an attribute 
condition is met, e.g. the subscriber has reached the number of purchase bytes or the 
time has expired, the user's PCMCIA card 29 will automatically zeroize with respect to 
that publication. Further access by the user will require another call to the 
billing/access center 23. 

The above discussion described in detail general features of the subsystems of 
present invention and how they relate to one another. The following discussion 
repeats some of the above discussion with less of an emphasis of the interrelationship 
of the elements of the present invention, but with more of an emphasis on the 
components and method steps of the elements of the present invention. 

As discussed above, by logically grouping and categorizing the publisher's 
information, the publisher can then define the billing and advertising functions 
associated with the data sets to be published. After the publisher gathers all 
information that is intended for publication on a particular CD-ROM of series of CD- 
ROMs, the information is then be assigned the access and subscription attributes 
defined by the present invention. A standard publisher's configuration is shown in the 
block diagram of FIG. 5. There the publishers workstation 36 is shown on which to 
gathering and organizing information. The publisher is provided with billing 
premastering software 41 for such organization. In communication with the 
workstation is the CD-ROM writer driver 35 to create the CD-ROM. Finally, the key 
data base 42 which is stored at publisher's site contains the used keys and their 
alias', history and current attribute definitions. The key database 42 also contains a 
list of unused keys which the publisher can use and define the attributes for such 
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unused keys. After the publisher defines the use of a particular key, that information is 
sent to the remote billing/access center 23, 

The encryption device 43 is stored on the publisher's PCMCIA card 33 shown 
in Figure 6. Each publisher is assigned a unique and personal PCMCIA card 33 which 
contains, in a FLASH or EEPROM non-volatile memory 44, the publishers personalities 
and provides audit information about data published and its author. The personalities 
of the publisher are similar to those of the user as described above. The non-volatile 
memory 44 further contains the publisher's unique storage variable (K s ) used as part 
of the password algorithm. The aforementioned Information can be stored on the 
publisher's PCMCIA card and are encrypted by this local key. Additionally, the 
publisher's workstation automatically records the CD-ROM identification and KMIDs 
used to publish a particular CD-ROM. This audit data is stored and maintained by the 
key data base 42. 

The digital signature provided by the PCMCIA card 33 assures the 
billing/access center and/or the subscriber that the published data was in fact 
published on the CD-ROM by the authorized publisher of that particular information. 
This feature avoids piracy of copyrighted material, as well as falsified records in the 
corporate, government and legal environment. 

The audit information stored on the publisher's PCMCIA card 33 is auditable 
from the billing/access center 23. Since there is a transmission line between the 
billing/access center and the publisher, the billing/access center can access 
information stored on the publisher's PCMCIA card 33 to analyze the publisher's 
activity for many purposes, including improving the system. 

The PCMCIA card 33 can be a hardware card or a software application for 
emulating the hardware card functions. As a standard feature, it contains a volatile 
memory or RAM 46 and a bus interface 47 so that it may communicate with the 
publisher's computer system 36. 
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Before the publisher can actually encrypt and/or sign any information to the 
CD-ROM, it logs onto the PCMCIA card 33 which supports a logon phrase either 
through the keyboard interface or one which can be directly input to the card reader. 
The phrase may be any length or any set of ascii characters the publisher assigns. 
For enhanced security, the publisher may use biometrics (voice) after the logon phrase 
for a more secure logon which binds the publisher to the card and its resources. The 
publisher logs onto the card prior to performing any security related functions. 

After logon, the publisher may use the resources of the PCMCIA card 33. The 
card, whether performed as a software function on the publisher's computer 36 or as 
a separate hardware card, provides all of the cryptographic functions required by the 
publisher to generate a CD for supporting an electronic subscription service. The 
encryption for the CD application is performed at the sector level to support random 
access on large data bases. The microprocessor 48 operates as the encryption 
device 43 to allow the publisher to associate files, directories, sub directories, volumes 
or whole media with a particular symmetric encryption key and is used to execute the 
encryption. Signature and key exchange algorithms are performed using the 
public/private key determined by the personality selected. These algorithms are in 
software for configurability but may also be implemented in hardware on the 
microprocessor. The microprocessor can be an off the shelf microprocessor. The 
PCMCIA card 33 operates as a finite state machine. The publisher application is 
responsible for synchronization of key attribute definitions back to the remote 
billing/access center. 

The flow chart of FIG. 7 illustrates a series of steps of the present invention, 
most of which have been described in detail above. After the program starts 51 , the 
data is organized into the data sets to be published on a CD-ROM in step 52. The 
billing structure for each data set is prepared in step 53. Then, different attributes are 
associated with the data sets. For example, if time duration is assigned according to 
decision box 54, the time base is set at step 56 and the attribute is correlated to the 
data set. Or, the number of byte of access can be assigned to the data set according 
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to decision box 57, then the number of bytes is set at step 58 and the attribute is 
correlated to the data set. Or, certain transactions can be defined by the publisher and 
set according to decision boxes 59 and 61 and then correlated to the data set. After 
the attributes are created and correlated, new keys are obtained from the key database 
42 in step 62. The data is then ready to be encrypted. In step 63 the data is 
encrypted. In step 64, the key sector and signature tables are built. In step 66, the 
entire process is repeated for the next data set. When all of the data has been 
prepared, step 67 write the key sector and signature table to the CD and provides for 
the publisher to update its own records and the billing/access center database records. 

FIGS. 8 and 9 are illustrations one of the ways the program is presented to the 
publisher. This user friendly interface allows the publisher to point, click and drag 
components for assigning the attributes. The publisher can group similar applications 
to be encrypted under the same encryption key group 68. If the publisher does not 
want portions of particular data sets encrypted, the publisher may select bypass 
step 69 so that any hypertext or key word searches associated with the file will not be 
encrypted. This is particularly useful if the subscriber wants to determine the number 
of incidents of a particular word or transaction before buying the data base. 

After the publisher determines the key group associates and the level of 
encryption, the publisher is provided with a second set of menus for defining the 
billing attributes for the key group. FIG. 9 is an example of the type of interface 
provided to the user to set security defaults for the key group. These include but are 
not limited to: consecutive units of user access days, months or years; key start of 
user defined application turn on date; key expiration; total time of user access minutes, 
hours, days; total units transferred in bytes, words, or user defined transactions; and 
total user log ons. Key alias can be defined for easier key identification. 

These options are available on a new (unused) key or already aliased keys 
(used). After these attributes are determined by the publisher, the premastering 
software will update the publisher key database 42 with these parameters. Should the 
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publisher be using an existing alias the publisher has the option to apply a 
cryptographic update process to this key. The process is defined by using a known 
fixed constant and mathematically applying this constant (via an exclusive or function) 
to the old key. 

All updates are maintained with a key counter, which are associated with the 
key. This allows the publisher and subscriber to maintain synchronized keys and 
update counter which is published monthly with the published material. . Subscription 
access is controlled via the number of updates allowed during the period of time 
purchased by the subscriber. 

The key manager or data base 42 (see FIG. 5) will maintain an audit/history file 
of the KMIDs used with the individual CD-ROMs created by a publisher. After the CD- 
ROM is created the key manager 42 will automatically call the publisher's 
billing/access center and download the configured attribute information. 

The CD-ROM contains information about the beginning and ending sectors for 
the associated KMIDs. This information is maintained in a separated table that can be 
located anywhere on the CD-ROM. FIG. 10 illustrates such a table. The publisher's 
digital signature file 70a contains signed data files 70b. Other files which have been 
discussed above including publisher's information 70c, the encryption algorithm 
information 70d, the update algorithm information 70e, the advertisement information 
relating to the publishing data 70f, and the key sector and signature table 70g are also 
included on the CD-ROM. 

The key sector and signature table 70g contain the information about the 
KMIDs used in creating this media. Most importantly, this table contains the stop and 
start sectors for the KMIDs used. 

Turning to FIG. 11, many of the features shown in FIG. 2 are again shown, but 
in block diagram form. However, audit/decrypt device and call up application 71 are 
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distinguished from the user's computer 31 . This device can either be on the user's 
PCMCIA card 29 or can be separate hardware or software installed on the user's 
computer 31. 

The user's PCMCIA card 29 includes a standard bus interface 72 and RAM 73. 
The non-volatile memory includes such features as described above, such as 
personalities and audit functions. The microprocessor 76 includes an 
encryption/decryption, signature, key exchange algorithm. 

The operation by the user of the features on the user's PCMCIA card 29 is 
shown in the flow chart of FIG. 13. After the start 77 of the sequence of events, in 
step 78 the user orders subscription service to obtain periodically distributed media. 
In step 79, the user receives the CD-ROM by, for example, mail and loads the card 
and the CD-ROM. On the user's computer screen, the user views information stored 
on the CD-ROM similar that shown FIG. 10. In step 81 the user develops and signs 
an electronic mail request for a key and sends it to the billing/access center. In step 
82, after having been authenticated and authorized, the user obtains the key via e-mail 
from the billing/access center. In step 83, the key is stored on the user's PCMCIA 
card 29. The card further maintains an audit log of the users activity according to the 
attributes configured. This audit can be accessed by the billing/access center 
remotely in order to monitor use for several purposes. For example, the use is audited 
to provide publishers information as to how many times, after a subscription is 
published, the user views the same publication. Finally, in step 84, the user accesses 
the file of choice. 

Referring to FIG. 14, features of the billing/access center 23 are shown in 
block diagrams. Features already discussed include the remote links 27 to both the 
users and the publishers. The bulk key data base 85 keeps keys to be distributed to 
the publishers for their use in encrypting data. The subscriber data base 86 includes 
lists of all subscribers and certain information about them obtained prior to or after 
their use of the system or through audits. The publisher data base 87 contains the 
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publisher's use of the keys and their associated KMIDs. The bulletin board 88 holds 
messages which are incoming from subscribers and publishers. It is also available to 
send messages to both the publishers and the subscribers telling them of new features 
of the system or other information. 

The billing/access center process starts 89 by polling the bulletin board or 
incoming call for incoming requests from subscribers. In step 92, the billing/access 
center reads the electronic request and authenticates the subscriber by checking the 
electronic signature of the message. In step 93, from the KMID provided by the 
request, it makes a match to the attributes to provide billing information. Optionally, 
the billing/access center can communicate with the user in step 94 to provide billing 
options to the user, such as time payments or offers not indicated on the CD-ROM 
menu. When the billing is settled, in step 95, the billing/access center validates the 
subscriber's payment method and receives a purchase order from the user. If the 
signature or the payment method are not satisfactory, the billing/access center denies 
the key and log attempt in step 96. If they are satisfactory, the key is downloaded to 
the user's PCMCIA card 29 in step 97. In step 98, the billing/access center queries 
for more requests. If there are none, it downloads the audit file, obtains the current 
user KMID audit file from the card in step 99 and updates the subscribers database 97 
and updates the publisher's account in steps 100 and 101 respectively. If the 
response is yes to the query of step 98, the system returns to step 93 and begins the 
process over again, but with respect to a different data file and KMID. 

The billing/access centers communication with the user can be interactive as 
described above, or it can be configured so that it a request is sent and it is either 
approved or denied. In any event, the billing/access center receives the KMID and if 
authorization is achieved, the key is sent to the user to access the data stored on the 
CD-ROM. 

As discussed briefly above, the cryptographic update process provides a way 
in which access to out-of-date information or issues released beyond a subscriber's 
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tirne period is blocked. The cryptographic update process is yet another flag in the 
attribute data structure. The publisher of a monthly or bi-weekly periodical will publish 
a large amount of information regularly for what can be a very long period time 
(years). The publisher of periodicals will have subscribers to their service receiving 
5 this data. The subscriber joins and is downloaded with a key that is valid for a period 

of time that their subscription service is online. However, this puts the publisher in a 
very vulnerable position, if the same key is used for all encryption during the life of the 
publication. The objective of the remote cryptographic update process is to allow the 
publisher of a periodical to ship each periodical under a different encryption key each 
10 month without having to download a new key to their current set of subscribers. 

Ideally, the publisher will distribute the information encrypted under a different 
key each month. This protects the publisher's information from an external attacker 
determining their key and obtaining all of their publications. However, this implies that 
a subscriber would be required to download a new key each month, for example. This 
may be very cumbersome to the subscriber. The system of the present invention 
defines the use of a user site cryptographic update that is applied to the current (or 
monthly) key to "generate" a new key based on the previous month's key. Since all 
cards understand the algorithm to be used for the update process, they derive the 
same key value. The publisher is aware of the algorithm and uses it to generate the 
updated key value for the encryption process. If a publisher puts out material monthly, 
they would perform a monthly "update" on the key for each new publication. When the 
subscriber obtains the new CD-ROM, an update counter of the CD-ROM tells the 
user's PCMCIA how many updates have been performed. The update counter is used 
to maintain synchronization between publisher and subscriber. 

25 For example, turning to FIG. 1 6, there is shown a one year subscription service 

period. The twelve months are identified in column 106. Each month has a different 
key associated with it as shown in column 1 07, such indicated as K A , K B , and so on. 
"Subscriber One" indicated in column 108 is shown as having a six month subscription 
starting in the second month of the year. "Subscriber One" receives key K B to access 
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the data distributed in the second month. The update process as described above 
updates key K B through a mathematical operation where the update process, U, acts 
on the previous month's key. For example, when U acts on K B , K c = UK B . Moreover, 
when the CD for the third month of the subscription becomes available, U acts on K c 
5 so that K D = UK C = UUK B . K D through K G are generated in the same manner. Thus, 

through the cryptographic update process of the present invention, "Subscriber One" 
receives a set of keys which operate to access the issues between month two and 
month seven. A different subscriber, "Subscriber Two" as indicate by column 109, 
also has a six month subscription, however, it begins in the fourth month and receives 

10 key K D . The update process of the present invention updates key K D so that U acts on 

„ K D , K E = UK D . Moreover, when the CD for the third month of the subscription 
becomes available, U acts on K D so that K F = UK E = UUK D . K G through K, are 
generated in the same manner. Thus, while "Subscriber One" and "Subscriber Two" 
have their subscriptions during different time periods which overlap, they use the same 

15 keys to access the overlapping months through the update process. The process of 

the generation of the access codes from the initially downloaded key for access to a 
certain portion of the year's issues through a monthly update, allows the publisher to 
provide subscription service starting at different times and having different lengths, 
without providing access to more data than the authorized service. The KM ID 

20 parameters define the number of updates purchased. In the example of FIG. 16, the 

KM ID would define five (5) updates for both users. 

Thus, the present invention includes a data retrieval system for use by a user 
which includes a plurality of portable data storage means, such as CD-ROMs, wherein 
each of which includes data stored on certain ones of the plurality of CD-ROM, for 

25 example, issues of a particular publication which is sequentially distributed. Portions 

of the data on the CD-ROMs is selected by the user which are accessible by a set of 
access codes (i.e., K B to K G ) which is part of a larger group of access codes (i.e., K A 
to K L ) wherein one of the set of access codes is a transmitted access code, such 
transmitted to said user by the billing/access center. To access previously 

30 unaccessible ones of the plurality of CD-ROMs, the CD-ROMs include a code which is 
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cooperative with the transmitted access code for generating updated access codes for 
access to data on other certain ones of the plurality of CD-ROMs. 

The update process uses the current key (the one used in the months of the 
publication). To this key a fixed an known constant is mathematically applied, for 
5 example, exclusive OR'd, to the current key. The resultant value from the mathematical 

operation is used as the decryption key for the next publication. All keys with update 
attributes are maintained with their update counter. This allows the user to 
synchronize their keys even if they missed one or two publications. This process 
occurs at the subscriber's site. The publisher performs the same functions and 
10 applies the same value to generate the new encryption key. The information is 

encrypted with the newly updated key. The encryption information and the update 
counter, which is unencrypted, is recorded onto the CD-ROM for distribution. 
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ln the Claims : 

1. A system for accessing data by a user, comprising: 
processor means for processing said data; 

portable data storage means for storing said data in a manner requiring 
different access codes for accessing correspondingly different data stored on said 
portable data storage means by the user; 

controller means in communication with said processor means for receiving a 
signal representative of one of said different access codes from a remote location and 
for sending a signal which enables access by said processor means to a selected 
portion of said data on said portable data storage means using one of said access 
codes; 

remote authorization means located at a location remote from said processor 
means and said controller means and in communication with the aforesaid means, said 
remote authorization means for transmitting said one access code signal to said 
controller means from said remote location in response to an authorization request 
signal sent by the user to said remote authorization means; 

a plurality of portable data storage means each of which includes data stored 
on certain ones of said plurality of portable data storage means including portions 
selected by said user, said selected portions on said certain portable storage means 
being accessible by a set of access codes, wherein one of said access codes is a 
transmitted code, such transmitted to said user to provide access to said selected 
portions of said data stored on certain ones of said plurality of portable data storage 
means; and 

wherein said plurality of data storage means includes means cooperative with 
said transmitted access code for generating updated access codes for access to 
previously unaccessible parts of said selected portions of said data on certain ones of 
said plurality of portable data storage means. 
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2. A system as recited in Claim 1 wherein said selected portions of said data 
stored on certain ones of said plurality of portable data storage means are provided to 
said user sequentially and said transmitted access code provides said user with 
access to said data stored on the first portable data storage means of said sequence 

5 of portable data storage means. 

3. A system as recited in Claim 1 wherein each of said access codes is 
correlated with an identifying code and wherein said authorization request comprises 
said identifying code. 

4. A system as recited in Claim 3 wherein said identifying code is representative 
of an attribute. 

5. A system as recited in Claim 4 wherein said attribute is representative of a use 
of said data. 

6. A system as recited in Claim 1 wherein said controller means is a hardware 
configuration. 

7. A system as recited in Claim 1 wherein said controller means is a software 
configuration. 

8. A system as recited in Claim 1 wherein said data stored on said portable data 
storage means includes identifying codes associated with each of said different 

5 portions of said data. 

9. A system as recited in Claim 8 wherein said identifying codes are correlated 
with attributes. 

10. A system as recited in Claim 9 wherein said attribute is representative of use 
of said data. 
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11. A system as recited in Claim 8 wherein said authorization request includes one 
of said identifying codes. 

12. A method for distributing data to a user comprising the steps of: 

on a portable data storage unit, providing encrypted data, such requiring an 
access code to decrypt said data to provide access thereto; 

delivering said portable data storage unit to said user; 

at a remote location, generating an authorization signal which causes an 
5 access code to be transmitted to said user to enable said user to access a portion of 

said encrypted data by decrypting a portion of said encrypted data; 

applying said access code to said encrypted data to decrypt a portion of said 
encrypted data; 

processing said decrypted portion of said encrypted data ; and 

wherein each of said access codes is correlated with an access code identifier. 

13. A method as recited in Claim 12 further comprising a plurality of portable data 
storage means each of which includes data stored on certain ones of said plurality of 
portable data storage means including portions selected by said user, said selected 
portions on said certain portable storage means being accessible by a set of access 
codes, wherein one of said set of access codes is a transmitted access code, such 

5 transmitted to said user to provide access to said selected portions of said data stored 

on certain ones of said plurality of portable data storage means. 

14. A method as recited in Claim 13 wherein said plurality of data storage means 
includes means cooperative with said one transmitted access code for generating 
updated access codes for access to previously unaccessible parts of said selected 
portions of said data on certain ones of said plurality of portable data storage means. 

15. A method as recited in Claim 13 wherein said selected portions of said data 
stored on certain ones of said plurality of portable data storage means are provided to 
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said user sequentially and said transmitted access code provides said user with 
access to said data stored on the first portable data storage means of said sequence 
of portable data storage means. 

16. A method as recited in Claim 12 wherein said authorization request by said 
user includes said access code identifier. 

17. A method as recited in Claim 12 wherein said access code identifier is 
representative of an attribute. 

18. A method as recited in Claim 17 wherein said attribute is representative of use 
of said data. 

19. A method as recited in Claim 12 wherein said applying step is carried out by 
hardware configuration. 

20. A method as recited in Claim 12 wherein said applying step is carried out by 
software configuration. 

21. A method as recited in Claim 12 wherein said data stored on said portable 
data storage unit includes identifying codes associated with different portions of said 
data. 

22. A method as recited in Claim 21 wherein said identifying codes are correlated 
with attributes. 

23. A method as recited in Claim 22 wherein said attributes are representative of 
use of said data. 

24. A method for distributing information in the form of data sets and providing 
access thereto, comprising the steps of: 
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encrypting said data sets so that different access codes are required to 
decrypt different portions of said data sets; 

correlating said data sets with access codes identifiers; 
writing said data sets onto a data storage means; 

remotely providing said data access controller with one of said different access 
codes to decrypt a selected one of said encrypted data sets in response to the receipt 
of one of said access code identifiers; and 

transferring said data storage means from a first location to a second location 
wherein at said second location a data storage controller which is capable of applying 
said access codes to said data storage means is provided; and 

said data access controller accessing said data sets written onto said data 
storage means; and 

wherein said access codes are further associated with attributes. 

25. A method as recited in Claim 24 further comprising a plurality of data storage 
means each of which includes data stored on certain ones of said plurality of data 
storage means including portions selected by said user, said selected portions on said 
certain storage means being accessible by a set of access codes, wherein one of said 
set of access codes is a transmitted access code, such transmitted to said user to 
provide access to said selected portions of said data stored on certain ones of said 
plurality of data storage means. 

26. A method as recited in Claim 25 wherein said plurality of data storage means 
includes means cooperative with said one transmitted access code for generating 
updated access codes for access to previously unaccessible parts of said selected 
portions of said data on certain ones of said plurality of portable data storage means. 

27. A method as recited in Claim 25 wherein said selected portions of said data 
stored on certain ones of said plurality of data storage means are provided to said 
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user sequentially and said transmitted access code provides said user with access to 
said data stored on the first data storage means of said sequence of data storage 
means. 

28. A method as recited in Claim 24 wherein said attributes are representative of 
use of said data. 

29. A system for encrypting data, comprising: 
receiving means for receiving said data; 

segmenting means in communication with said receiving means for segmenting 
said data into individual data sets; 

a memory medium in communication with said segmenting means, said 
memory medium including programming means stored thereon for encrypting said 
individual data sets and for assigning access code identifiers to said individual data 
sets, each of said access code identifiers associated with a particular access code for 
decrypting one of said individual data sets; and 

processor means in communication with said memory medium for writing said 
encrypted individual data sets to a portable data storage means. 

30. A system as recited in Claim 29 wherein said plurality of data storage means 
includes means cooperative with said one transmitted access code for generating 
updated access codes for access to previously unaccessible parts of said selected 
portions of said data on certain ones of said plurality of portable data storage means. 

31. A system as recited in Claim 29 wherein said access code is further 
associated with an attribute. 

32. A system as recited in Claim 31 wherein said attribute is representative of use 
of said data set. 

33. A system as recited in Claim 29 further comprising: 
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transfer means for transferring said portable data storage means in a remote 
location; 

controller means for receiving a particular access code for decrypting one of 
said individual data sets and for providing access thereto by a processor; and 
5 authorization means for providing one of said different access codes to said 

controller means in response to an authorization request. 

34. A system as recited in Claim 33 wherein said controller means is a hardware 
configuration. 

35. A system as recited in Claim 33 wherein said controller means is a software 
configuration. 

36. A method for encrypting data sets to control access thereto, comprising the 
steps of: 

defining attributes in a manner which corresponds to particular properties of 
said data sets; 

5 binding said attributes to access codes; 

encoding said data sets so they may be decrypted by said access codes when* 
said access codes signals are applied to said data sets by a processor; and 
storing said encoded data sets on portable data storage means. 

37. A method as recited in Claim 36 wherein attributes are representative of a use 
of said data. 

38. A method as recited in Claim 36 wherein said access codes are correlated 
with identifying codes. 

39. A method as recited in Claim 36 wherein access to said encoded data sets on 
said portable data storage means is provided by a remote authorization center and 
further comprising a controller in communication with said portable data storage 
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means and wherein, upon transmitting one of said identifying codes to said remote 
authorization center, one of said access codes is downloaded to said controller in 
communication with said portable data storage means wherein said controller provides 
access to said data sets stored on said portable data storage means. 

40. A method recited in Claim 39 wherein said controller means is a hardware 
configuration. 

41 . A method as recited in Claim 39 wherein said controller means is a software 
configuration. 

42. A method as recited in Claim 36 further comprising a plurality of portable data 
storage means each of which includes data stored on certain ones of said plurality of 
portable data storage means including portions selected by said user, said selected 
portions on said certain portable storage means being accessible by a set of access 
codes, wherein one of said set of access codes is a transmitted access code, such 
transmitted to said user to provide access to said selected portions of said data stored 
on certain ones of said plurality of portable data storage means. 

43. A method as recited in Claim 42 wherein said plurality of data storage means 
includes means cooperative with said one transmitted access code for generating 
updated access codes for access to previously unaccessible parts of said selected 
portions of said data on certain ones of said plurality of portable data storage means. 

44. A method as recited in Claim 42 wherein said selected portions of said data 
stored on certain ones of said plurality of portable data storage means are provided to 
said user sequentially and said transmitted access code provides said user with 
access to said data stored on the first portable data storage means of said sequence 
of portable data storage means. 
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45. A data retrieval system for use by a user comprising a plurality of portable 
data storage means each of which includes data stored on certain ones of said 
plurality of portable data storage means including portions selected by said user, said 
selected portions on said certain portable storage means being accessible by a set of 
access codes, wherein one of said set of access codes is transmitted by a remote 
central processing unit to a user at a second location, such transmitted to said user to 
provide access to said selected portions of said data stored on certain ones of said 
plurality of portable data storage means; and 

wherein said plurality of data storage means includes means cooperative with 
said transmitted access code for generating updated access codes for access to 
previously unaccessible parts of said selected portions of said data on certain ones of 
said plurality of portable data storage means. 

46. A system as recited in Claim 45 wherein said selected portions of said data 
stored on certain ones of said plurality of portable data storage means are provided to 
said user sequentially and said transmitted access code provides said user with 
access to said data stored on the first portable data storage means of said sequence 
of portable data storage means. 
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